Explore the secure transport protocol of open-source software supply chains in this 34-minute conference talk from CNCF. Delve into The Update Framework (TUF) and its role in securely distributing software artifacts and metadata. Learn about TUF's design for solving large-scale security challenges, covering hundreds of thousands of packages. Discover real-world applications in open-source package repositories, OCI registries, Sigstore, and Datadog. Watch a demonstration on bootstrapping and managing a TUF repository using a new open-source tool directly from CI. Gain insights into recent project updates and find out how to contribute to securing open-source software supply chains.
Secure Transport for Your Software Supply Chain with TUF
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Secure Transport for Your Software Supply Chain with TUF - Marina Moore & Trishank Kuppusamy
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Toto-Ally TUF: Simple Tools for a Secure Software Supply Chain
-
Verifying Software Signatures with TUF and Sigstore
-
TUF-En Up Your Signatures - Enhancing Software Distribution Security
-
Navigating the Software Supply Chain Defense Landscape
-
Maintaining The Update Framework (TUF) - Insights and Contributions
-
The Update Framework (TUF) Maintainer Panel: Integrations, Enhancements, and Supply Chain Security
